CVE-2006-6446
CVE-2006-6446 describes an SQL injection vulnerability in index.php of iWare Professional 5.0.4, triggered when magic_quotes_gpc is disabled. An attacker can remotely execute arbitrary SQL commands via the D parameter. The entry notes the provenance as third‑party information and provides CVSS 2....